$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/ED1F311669F211EE80D21411C4F9AE02.roa File: ED1F311669F211EE80D21411C4F9AE02.roa (raw, json) Hash identifier: L0zh9rp19fog9hVTpD3NH0Fcco5PK8SNFoQnz8h9Ww8= Subject key identifier: 03:BF:3E:2E:3B:63:0F:5D:80:AD:30:F6:29:2C:6E:EE:9E:71:B4:C3 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 050F Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/ED1F311669F211EE80D21411C4F9AE02.roa Signing time: Tue 17 Oct 2023 15:47:54 +0000 ROA not before: Tue 17 Oct 2023 15:47:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132335 IP address blocks: 103.231.59.0/24 maxlen: 24 103.240.197.0/24 maxlen: 24 103.240.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1295 (0x50f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Oct 17 15:47:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652eaca9-b802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ef:ef:14:ff:71:22:24:89:8a:a2:14:31:58: 5f:e2:a6:89:d4:84:94:7d:3c:67:5a:e7:df:db:bf: 6d:19:d7:e2:a4:3b:ce:71:23:dc:01:00:4a:0f:00: ac:9b:e7:70:e1:7f:1b:81:ce:a6:89:27:ad:92:78: 11:eb:3d:a8:74:b4:88:bf:fa:65:fd:e0:52:66:4c: 17:54:44:53:9b:c1:7d:84:6c:e6:cf:43:b1:2d:9d: 90:57:14:71:4a:0a:aa:a5:16:ca:13:18:74:fd:47: 74:4c:ca:ee:d8:3a:0b:26:c5:c9:9d:33:4b:00:33: b5:e8:e0:17:f3:ed:f8:f4:be:4d:74:ee:81:46:91: bc:23:39:7c:08:c1:ed:cf:ba:3b:eb:fb:c7:06:c0: d3:b0:ca:c4:65:60:f7:a1:5f:18:c2:ab:8a:f0:70: a7:d8:81:3a:2e:90:39:10:eb:a6:b6:24:13:ec:e8: f2:1e:1c:04:83:9c:2b:9f:db:2a:ac:e4:20:c2:24: ee:78:55:15:eb:e9:be:38:43:c3:17:c4:e7:aa:5c: 12:e7:d5:f9:74:d6:64:02:b6:51:87:22:33:a5:67: fb:59:41:fb:ad:01:6f:7b:09:fb:57:76:5b:b7:12: b4:3b:90:c1:3e:0a:f8:fe:75:a5:86:d7:3f:cb:fc: 61:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BF:3E:2E:3B:63:0F:5D:80:AD:30:F6:29:2C:6E:EE:9E:71:B4:C3 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/ED1F311669F211EE80D21411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.59.0/24 103.240.197.0-103.240.198.255 Signature Algorithm: sha256WithRSAEncryption 2f:f5:3a:17:6a:8e:ff:c0:77:1b:25:f8:b2:d0:7a:5f:14:3a: 6c:54:23:54:e3:f0:cb:ab:1e:7e:26:4e:96:8d:c3:58:e1:78: a8:12:3c:7e:2b:d3:b5:df:2c:a9:9d:38:a2:39:3b:9f:0c:f1: 62:1f:62:ec:e5:d6:dd:07:bf:9e:b0:1f:73:cf:69:a3:f3:a2: 59:64:5b:1a:c3:3b:f7:ad:ee:bc:1b:3a:9e:88:0e:99:19:0d: ef:12:b2:f0:74:68:a0:d7:47:eb:cc:78:4a:ba:1a:d7:74:c2: cc:b4:da:1a:50:bb:c5:35:e2:48:49:49:f0:91:08:c8:53:ed: d9:02:59:50:6d:c7:aa:06:9a:fe:76:28:50:90:e6:aa:7a:ea: cc:b3:12:d0:6f:f9:8f:31:00:17:d4:66:c5:cd:cc:2f:45:49: 52:9d:9b:69:ce:d1:7d:ce:8a:c2:0e:f4:30:02:51:b2:6b:ae: 30:88:5b:39:c7:49:67:96:02:36:9a:1c:66:fa:7e:e4:c6:c6: 47:69:e8:ec:94:32:68:17:0a:fb:5d:fd:ec:5e:66:3e:d1:6c: d9:5e:ee:59:79:0d:80:dd:51:bb:a2:f2:8a:ad:b7:c5:9f:ee: 21:f6:5c:c8:ec:62:f1:8a:ac:b6:d8:96:4b:36:f8:11:46:84: a6:7e:87:e3 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMxMDE3MTU0NzUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJlYWNhOS1iODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO/vFP9xIiSJiqIUMVhf4qaJ1ISUfTxnWuff279tGdfipDvOcSPcAQBKDwCs m+dw4X8bgc6miSetkngR6z2odLSIv/pl/eBSZkwXVERTm8F9hGzmz0OxLZ2QVxRx SgqqpRbKExh0/Ud0TMru2DoLJsXJnTNLADO16OAX8+349L5NdO6BRpG8Izl8CMHt z7o76/vHBsDTsMrEZWD3oV8YwquK8HCn2IE6LpA5EOumtiQT7OjyHhwEg5wrn9sq rOQgwiTueFUV6+m+OEPDF8TnqlwS59X5dNZkArZRhyIzpWf7WUH7rQFvewn7V3Zb txK0O5DBPgr4/nWlhtc/y/xhVwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFAO/Pi47 Yw9dgK0w9iksbu6ecbTDMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvRUQxRjMxMTY2 OUYyMTFFRTgwRDIxNDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABn5zswDAMEAGfwxQMEAGfwxjANBgkqhkiG9w0BAQsFAAOC AQEAL/U6F2qO/8B3GyX4stB6XxQ6bFQjVOPwy6sefiZOlo3DWOF4qBI8fivTtd8s qZ04ojk7nwzxYh9i7OXW3Qe/nrAfc89po/OiWWRbGsM7963uvBs6nogOmRkN7xKy 8HRooNdH68x4Sroa13TCzLTaGlC7xTXiSElJ8JEIyFPt2QJZUG3Hqgaa/nYoUJDm qnrqzLMS0G/5jzEAF9Rmxc3ML0VJUp2bac7Rfc6Kwg70MAJRsmuuMIhbOcdJZ5YC NpocZvp+5MbGR2no7JQyaBcK+1397F5mPtFs2V7uWXkNgN1Ru6Lyiq23xZ/uIfZc yOxi8YqsttiWSzb4EUaEpn6H4w== -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:23 2024 by rpki-client on console-ams.rpki-client.org